Advertisement
CVE-2026-4293: Kieback & Peter DDC XSS — Mitigate Building Controller Risks
CISA warns of CVE-2026-4293, a Cross-site Scripting vulnerability in Kieback & Peter DDC Building Controllers. Attackers could control victim browsers, affecting
Zero Trust Adoption for Operational Technology Security
CISA guidance details adapting Zero Trust principles to Operational Technology (OT) to mitigate IT-OT convergence risks for critical infrastructure.
Serial-to-IP Converter Flaws Expose OT & Healthcare Systems
Forescout found 20 vulnerabilities in Lantronix and Silex serial-to-IP converters, posing theoretical hacking risks to critical OT and healthcare infrastructure.
Iran-Linked Cyber Av3ngers Target US Water Sector PLCs
US federal agencies warn of Iran-linked Cyber Av3ngers targeting Unitronics PLCs in critical infrastructure. Learn how to detect and mitigate these OT attacks.
Iranian APT Exploits Rockwell Automation PLCs: Securing Critical Infrastructure OT Devices
Iranian-affiliated APT actors are exploiting internet-facing Rockwell Automation PLCs, disrupting US critical infrastructure. Learn how to secure your OT devices and
Iranian-Linked Actors Target Rockwell/Allen-Bradley PLCs in U.S. Critical Infrastructure
U.S. critical infrastructure faces threats from Iranian-linked actors targeting internet-exposed Rockwell/Allen-Bradley PLCs. Learn about the risk and mitigations.
CVE-2025-57176: Unauthenticated File Upload in Ceragon Siklu Devices
An unauthenticated file upload vulnerability (CVE-2025-57176) in Ceragon Siklu MultiHaul and EtherHaul series devices poses risks to critical communications
Protecting Healthcare XIoT: Mitigating Risks to IoMT Devices
Healthcare organizations face critical challenges securing IoMT and XIoT assets. Learn about common threats and best practices for asset protection.
Nation-State Cyber Operation: Israel's Compromise of Iranian Traffic Cameras
Analysis of the reported Israeli cyber operation targeting Iranian traffic cameras, detailing implications for critical infrastructure security and cyber-physical
Mobiliti e-mobi.hu EV Chargers: Critical Auth Bypass & DoS Vulnerabilities
Critical vulnerabilities in Mobiliti e-mobi.hu EV charging stations (all versions) allow unauthenticated attackers to gain administrative control or disrupt services.
Honeywell IQ4 Vulnerability: Assessing Internet Exposure & Impact
A researcher claims thousands of internet-exposed Honeywell IQ4 building controllers are vulnerable. Understand the potential impact and mitigation strategies.
Analysis of ICS Vulnerability Surges and Targeted Healthcare Ransomware Campaigns
An investigation into the escalation of vulnerabilities within Industrial Control Systems (ICS) and the resulting operational disruptions in the US healthcare sector due to ransomware.